Date: Sat, 21 Aug 1999 11:39:06 +0100 From: Brian Somers <brian@Awfulhak.org> To: "Andy V. Oleynik" <andyo@prime.net.ua> Cc: Brian Somers <brian@Awfulhak.org>, freebsd-isp@FreeBSD.ORG Subject: Re: Problem with ICMP when aliasing enabled? Message-ID: <199908211039.LAA02385@keep.lan.Awfulhak.org> In-Reply-To: Your message of "Sat, 21 Aug 1999 10:34:40 %2B0300." <37BE568F.4EA45BEE@prime.net.ua>
next in thread | previous in thread | raw e-mail | index | archive | help
Aliasing does some odd things if enabled on the ``public'' side of = the ppp link. I'd be surprised if the client can connect to anything = except the ppp server. I'd suggest you disable aliasing in the incoming profile (``alias = enable no''). Things should be sane again then :-) > I'll try to clarify situation. > Client use M$WinXXX to dialup into FBSD ppp server which > provides ppp with aliasing on server side. I didnt especially > disable aliasing on dialup modem pool coz I dicided that it > didnt matter in the dialup case. Generally aliasing is ajusted > in default section and serves the leased mppp link to the > base backbone (defaultroute). Thus aliasing propagated on > the dialup ppp links too. And dialup clients(real dynamic IPs) > say that they have usual tcp traffic but they cant to ping remote > hosts but the dialup ppp server. And I can ping clients only from > dialup ppp server only but not from another hosts. Though ECHO > requests goes through the dialup links w/o any replies. > Was I clear? > |backbone---------echo requests w/o replies ---------------> > | > |-------------|Client1 > |-------------------------------| ppp dialup server|---echo requests wi= th > replies----------> > | mppp leased link with > |-------------|ClientN > | aliasing > dialup ppp with propagated aliasing > = > Brian Somers wrote: > = > > > Here is another strangeness but I'm not sure that this > > > > > > is relevant to aliasing. Well, clients are serviced by > > > > > > user ppp on dialin side of server providing dynamic > > > > > > IP distribution per ttyd basis. IPs are real. And everithing > > > > > > is Ok but ICMP (particularly ECHOREQ/ECHOREP). There is > > > > > > normal traffik from clients to Inet and wise a versa > > > > > > on the ppp links. But I can ping and take repley from > > > > > > clients only from ppp host exactly. When I ping them from > > > > > > other hosts I take no repleys. But tcpdump shows that > > > > > > echo-reqs goes from dialup ppp link to the clients PCs. > > > > > > All other proto's works good. There are no FW's rules > > > > > > denying incoming ICMP traffik from clients. Any ideas? > > > > Maybe I don't understand you... this works ok for me - when I dial > > the 'net from home I run ppp -alias. A ping from an external machine= > > to the dialed-up machine works ok... > > > > > -- > > > WBW Andy V. Oleynik (When U work in virtual office > > > prime.net.ua's U have good chance to obtain > > > system administrator virtual money =F6%-) > > > +380442448363 > > > > -- > > Brian <brian@Awfulhak.org> <brian@FreeBSD.org>= > > <http://www.Awfulhak.org>; <brian@OpenBSD.org>= > > Don't _EVER_ lose your sense of humour ! <brian@FreeBSD.org.= uk> > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-isp" in the body of the message > = > -- > WBW Andy V. Oleynik (When U work in virtual office > prime.net.ua's U have good chance to obtain > system administrator virtual money =F6%-) > +380442448363 -- = Brian <brian@Awfulhak.org> <brian@FreeBSD.org> <http://www.Awfulhak.org>; <brian@OpenBSD.org> Don't _EVER_ lose your sense of humour ! <brian@FreeBSD.org.uk> To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-isp" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199908211039.LAA02385>